Finally, a "critical" Java runtime update from Apple by ZDNet's Ryan Naraine -- Apple has shipped a long-overdue Java runtime update to plug at least 30 vulnerabilities that expose Mac OS X users to remote code execution attacks.
This article really only highlights the issue. Quicktime has (and still has) many bugs so many that I'd simply deem it the 'Buggiest and Most Insecure Application of ALL TIME' Anyone who uses Quicktime should REMOVE IT immediately, and then clean there system. I'd even recommend cleaning the registry of any APPLE or QUICKTIME entries, something I'm typically loathe to do under any circumstances. Apple simply seems to not understand the security climate in todays world, or doesn't care about it's users. Either way it's reprehensible that they are doing so well in the technology markets without putting security first.Apple could learn a lot from Microsoft on this, but I'm not saying Microsofts approach is superior, I'm just saying it's actually far more committed to keeping it's user base informed. Apple seems to prefer just keeping us in the dark, or to use an alliteration, they prefer to keep the apples on the tree so they don't bonk someone on the head and perhaps wake them up to reality. Apple's products and OS is really insecure! This is like many ignorant companies that seem to think if 'we have a security breach, we keep it secret', and this is the approach I find criminal. I for one am lobbying governments to change this, and FORCE ANYONE with sensitive data or source code to proprietary OS's to FULLY DISCLOSE vulnerabilities to reduce ones exposure to 0-day attacks. It took Apple 6 months (!!!!) to come up with the latest patch, and it didn't fix all of them, actually of the 30 it claimed, only 18 are TRULY fixed. This type of lying is not warranted, nor does it reflect a company that cares about it's clients. And yes comparing apples to apples, I'd call it lying...I don't mix my fruit up.
Comments (0)
James Friesen Net
http://jamesfriesen.net/article.php/20071215103702745